Jump to content

Is this file a flase positive? Malware.AI.489150954


Recommended Posts

Malwarebytes reports is as Malware.AI.489150954, C:\WINDOWS\MICROSOFT.NET\FRAMEWORK64\V4.0.30319\TEMPORARY ASP.NET FILES\OWA\39DBA043\4E0B7B81\APP_WEB_OUTLOOKEN.ASPX.F5DBA9B9.AJOF3BZU.DLL, No Action By User, 1000000, 0, 1.0.49502, F92E69D2489BE9F31D27D9EA, dds, 01586533, EDC927F06990C55ADC1E75244376B971, 400E82942F21EAF5DC56CB4CEB8A01D5A540F7120CA8434F2536A50E57212704


See attached.


Link to post
Share on other sites

Thanks for your response. Yes, It has the latest CU and security update. Malwarebytes also discovered the following on 1/3 and sent that to quarantine. See attached.

Backdoor.Hafnium.Shell, C:\INETPUB\WWWROOT\ASPNET_CLIENT\RTIAF.ASPX, Quarantined, 15947, 926887, 1.0.49332, , ame, , 125825D6935503C434A6D364505D46AE, A5043E8F75E48455E7409555809E32D3598E3A19300F62DD49B8BFB1926FDB17


Link to post
Share on other sites

1 hour ago, szatkoff said:

So what's the trick to getting a response from support? I created a case on the 7th and have not heard back?

It has only been 5 business days. Be advised it can take 3-7 weekdays for a response after the automated reply with your ticket number.

Support is done first in first out basis. If you created more than one ticket it will delay the response.

Please post tour ticket number and I will have someone look into it.


Link to post
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
  • Recently Browsing   0 members

    • No registered users viewing this page.
Back to top
  • Create New...

Important Information

This site uses cookies - We have placed cookies on your device to help make this website better. You can adjust your cookie settings, otherwise we'll assume you're okay to continue.